mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
858 B
858 B
CVE-2016-1000271
Description
Joomla extension DT Register version before 3.1.12 (Joomla 3.x) / 2.8.18 (Joomla 2.5) contains an SQL injection in "/index.php?controller=calendar&format=raw&cat[0]=SQLi&task=events". This attack appears to be exploitable if the attacker can reach the web server.
POC
Reference
- https://packetstormsecurity.com/files/140141/Joomla-DT-Register-SQL-Injection.html
- https://packetstormsecurity.com/files/140141/Joomla-DT-Register-SQL-Injection.html
Github
No PoCs found on GitHub currently.